opfuchs's Stars
xnl-h4ck3r/waymore
Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!
kcustom11/dshield-azure
jborean93/PSEtw
PowerShell ETW consumer module
0xEr3bus/PoolPartyBof
A beacon object file implementation of PoolParty Process Injection Technique.
rvizx/CVE-2023-30547
PoC Exploit for VM2 Sandbox Escape Vulnerability
smokeintheshell/CVE-2023-20273
CVE-2023-20273 Exploit PoC
marcosValle/awesome-windows-red-team
A curated list of awesome Windows frameworks, libraries, software and resources for Red Teams
p0dalirius/LDAPWordlistHarvester
A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.
efchatz/pandora
A red team tool that assists into extracting/dumping master credentials and/or entries from different password managers.
Neo23x0/sysmon-config
Sysmon configuration file template with default high-quality event tracing
jakabakos/CVE-2023-50164-Apache-Struts-RCE
A critical security vulnerability, identified as CVE-2023-50164 (CVE: 9.8) was found in Apache Struts, allowing attackers to manipulate file upload parameters that can potentially lead to unauthorized path traversal and remote code execution (RCE).
Ge0rg3/sans-index-creator
Tools to automatically create a SANS index based off the course pdf files.
Leo4j/Invoke-ADEnum
Automated Active Directory Enumeration
ranhn/Flink
Apache Flink多版本远程代码执行漏洞
ionescu007/faxhell
A Bind Shell Using the Fax Service and a DLL Hijack
Syslifters/sysreptor
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
ihebski/A-Red-Teamer-diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
ka7ana/CVE-2023-36025
Quick test for CVE-2023-26025 behaviours
projectdiscovery/subfinder
Fast passive subdomain enumeration tool.
projectdiscovery/httpx
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
projectdiscovery/nuclei
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
projectdiscovery/naabu
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
lord-alfred/ipranges
🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft, Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.
Fadi002/de4py
toolkit for python reverse engineering
RoseSecurity/WolfPack
WolfPack combines the capabilities of Terraform and Packer to streamline the deployment of red team redirectors on a large scale.
ricardojoserf/WhoamiAlternatives
Different methods to get current username without using whoami
Leo4j/Amnesiac
Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Directory environments
RedTeamPentesting/pretender
Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
emdnaia/Babysteps
Experimental AI gen collection of stacking powershell obfuscation & encryption techniques for oneliners.
OgulcanUnveren/CVE-2023-4357-APT-Style-exploitation
Apt style exploitation of Chrome 0day CVE-2023-4357